Mark, please move to ntopng Luca
On Jul 9, 2013, at 7:40 PM, Mark Davis <[email protected]> wrote: > Hello! > > I am following up on last week's message. I am trying to determine how I can > troubleshoot nDPI, what logs I can check, etc. My PCAP file doesn't appear to > have any errors when I review it in Wireshark. If someone could offer some > suggestions of what to try, I would appreciate it. > > Thanks, > Mark > > Previous message: > > Hello, > > > I am running Ntop 5.0.1 that I've compiled to run on my system > (x86_64-3.5.0-23-generic-linux-gnu [64 bit]), the most stable version. From > looking at the Information page I can see that I am running GeoOP Version > GEO-533LITE 20090701 Build 1 and AS Version GEO-117 20090321 Build 1. > > I am attempting to identify traffic that I've already captured and stored > on pcap files, however 95% of the output displays as Unknown protocol. I > have checked the configuration.log and I haven't seen any problems during > the compiling phases, and the ndpi directory has files in it. I haven't > noticed any smoking guns during the installation. So how can I confirm that > the deep protocol inspection is actually running/working? I don't see it > listed as a plugin. > > Thanks, > Mark > _______________________________________________ > Ntop mailing list > [email protected] > http://listgateway.unipi.it/mailman/listinfo/ntop _______________________________________________ Ntop mailing list [email protected] http://listgateway.unipi.it/mailman/listinfo/ntop
